8190917: SSL session resumption broken for protocols other than TLSv1.2

Jaikiran Pai jai.forums2013 at gmail.com
Thu Nov 9 12:56:08 UTC 2017


Thank you Sean and David. I'll checkout this correct jdk project locally 
and open a new discussion in the security-dev mailing list.

-Jaikiran


On 09/11/17 6:16 PM, Seán Coffey wrote:
> Hi Jaikiran,
>
> Thanks for stepping up to offer a patch for this issue. 
> security-dev at openjdk.java.net is the mailing list where you'll need to 
> have the code review performed. Also, once you sign the OCA, you'll 
> need to contribute the patch to the new JDK Project[1] via its new 
> repo : http://hg.openjdk.java.net/jdk/jdk
>
> regards,
> Sean.
>
> [1] http://openjdk.java.net/projects/jdk/
>
> On 09/11/2017 12:41, David Holmes wrote:
>> Hi Jaikiran,
>>
>> JDK 9 has shipped so this mailing list is pretty quiet now. A bug fix 
>> needs to go into the main JDK project, and from there it can be 
>> backported to update releases if appropriate. In this case it looks 
>> like this would be something to take to the net-dev at openjdk.java.net 
>> mailing list.
>>
>> Cheers,
>> David
>>
>> On 9/11/2017 10:35 PM, Jaikiran Pai wrote:
>>> I would like to contribute a patch, containing a potential fix and a 
>>> test case, to the issue reported at 
>>> https://bugs.openjdk.java.net/browse/JDK-8190917. This is going to 
>>> be my first contribution to OpenJDK, so I would need some 
>>> guidance/help in having this reviewed/merged, please.
>>>
>>> To give a quick overview of this specific bug - the issue relates to 
>>> SSL session resumption which is no longer functional in Java 9 for 
>>> SSL protocols other than TLSv1.2. The JIRA itself has more extensive 
>>> details and a test case which reproduces the issue.
>>>
>>> So far, I have followed various documentation to setup and build 
>>> OpenJDK jdk9 locally. I use a Mac and at this point, I have 
>>> completed the following set of basic tasks:
>>>
>>>      - Checked out the mercurial repo (the complete forest) for jdk9 
>>> (hg tclone http://hg.openjdk.java.net/jdk9/jdk9)
>>>      - Built the JDK locally, following the instructions under 
>>> common/doc/building.md
>>>      - Run some of the basic tests successfully
>>>
>>> I have a potential fix ready and am in the process of writing a 
>>> jtreg test for this change. I am going to sign and submit the Oracle 
>>> Contributor Agreement this week soon (I believe that's needed right?).
>>>
>>> Before sending out the patch for review, I would like to understand 
>>> if there's anything else that I need to do before that. One thing 
>>> that I read in the contribution page[1] is that "Your patch must be 
>>> built and tested on all relevant platforms before submission". For 
>>> me, the only platform that I have access to is going to be my local 
>>> Mac OS. When I submit the patch, am I expected to test the changes 
>>> on other *nix and Windows OS too?
>>>
>>> If there's anything else that I left out, please feel free to let me 
>>> know or point me to the doc.
>>>
>>> [1] http://openjdk.java.net/contribute/
>>>
>>> P.S: I hope this is the right mailing list. I read the "how to 
>>> contribute" page and then guessed this is the correct mailing list, 
>>> but I'm not sure since I don't see any similar contributions 
>>> requests in the archive of this mailing list, this past year.
>>>
>>> -Jaikiran
>>>
>>>
>



More information about the jdk9-dev mailing list